{"id":"https://openalex.org/W4285490418","doi":"https://doi.org/10.1145/3533767.3534414","title":"Efficient greybox fuzzing of applications in Linux-based IoT devices via enhanced user-mode emulation","display_name":"Efficient greybox fuzzing of applications in Linux-based IoT devices via enhanced user-mode emulation","publication_year":2022,"publication_date":"2022-07-15","ids":{"openalex":"https://openalex.org/W4285490418","doi":"https://doi.org/10.1145/3533767.3534414"},"language":"en","primary_location":{"id":"doi:10.1145/3533767.3534414","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3533767.3534414","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 31st ACM SIGSOFT International Symposium on Software Testing and Analysis","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5053886363","display_name":"Yaowen Zheng","orcid":"https://orcid.org/0000-0002-8953-0782"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":true,"raw_author_name":"Yaowen Zheng","raw_affiliation_strings":["Nanyang Technological University, Singapore"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5068561556","display_name":"Yuekang Li","orcid":"https://orcid.org/0000-0003-4382-0757"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Yuekang Li","raw_affiliation_strings":["Nanyang Technological University, Singapore"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5044463543","display_name":"Cen Zhang","orcid":"https://orcid.org/0000-0001-9833-6327"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Cen Zhang","raw_affiliation_strings":["Nanyang Technological University, Singapore"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5087012171","display_name":"Hongsong Zhu","orcid":"https://orcid.org/0000-0003-3720-7403"},"institutions":[{"id":"https://openalex.org/I4210156404","display_name":"Institute of Information Engineering","ror":"https://ror.org/04r53se39","country_code":"CN","type":"facility","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210156404"]},{"id":"https://openalex.org/I4210165038","display_name":"University of Chinese Academy of Sciences","ror":"https://ror.org/05qbk4x57","country_code":"CN","type":"education","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210165038"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Hongsong Zhu","raw_affiliation_strings":["Institute of Information Engineering at Chinese Academy of Sciences, China / University of Chinese Academy of Sciences, China"],"affiliations":[{"raw_affiliation_string":"Institute of Information Engineering at Chinese Academy of Sciences, China / University of Chinese Academy of Sciences, China","institution_ids":["https://openalex.org/I4210156404","https://openalex.org/I4210165038"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100355692","display_name":"Yang Liu","orcid":"https://orcid.org/0000-0001-7300-9215"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Yang Liu","raw_affiliation_strings":["Nanyang Technological University, Singapore"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5061643975","display_name":"Limin Sun","orcid":"https://orcid.org/0000-0003-2745-7521"},"institutions":[{"id":"https://openalex.org/I4210165038","display_name":"University of Chinese Academy of Sciences","ror":"https://ror.org/05qbk4x57","country_code":"CN","type":"education","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210165038"]},{"id":"https://openalex.org/I4210156404","display_name":"Institute of Information Engineering","ror":"https://ror.org/04r53se39","country_code":"CN","type":"facility","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210156404"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Limin Sun","raw_affiliation_strings":["Institute of Information Engineering at Chinese Academy of Sciences, China / University of Chinese Academy of Sciences, China"],"affiliations":[{"raw_affiliation_string":"Institute of Information Engineering at Chinese Academy of Sciences, China / University of Chinese Academy of Sciences, China","institution_ids":["https://openalex.org/I4210156404","https://openalex.org/I4210165038"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5053886363"],"corresponding_institution_ids":["https://openalex.org/I172675005"],"apc_list":null,"apc_paid":null,"fwci":9.0029,"has_fulltext":false,"cited_by_count":34,"citation_normalized_percentile":{"value":0.98197312,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"417","last_page":"428"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9872000217437744,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/emulation","display_name":"Emulation","score":0.9555856585502625},{"id":"https://openalex.org/keywords/fuzz-testing","display_name":"Fuzz testing","score":0.9048545956611633},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8283802270889282},{"id":"https://openalex.org/keywords/hardware-emulation","display_name":"Hardware emulation","score":0.7144303917884827},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.5989670753479004},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.4663469195365906},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.4186927378177643},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.22720617055892944},{"id":"https://openalex.org/keywords/field-programmable-gate-array","display_name":"Field-programmable gate array","score":0.20684334635734558}],"concepts":[{"id":"https://openalex.org/C149810388","wikidata":"https://www.wikidata.org/wiki/Q5374873","display_name":"Emulation","level":2,"score":0.9555856585502625},{"id":"https://openalex.org/C111065885","wikidata":"https://www.wikidata.org/wiki/Q1189053","display_name":"Fuzz testing","level":3,"score":0.9048545956611633},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8283802270889282},{"id":"https://openalex.org/C94115699","wikidata":"https://www.wikidata.org/wiki/Q5656406","display_name":"Hardware emulation","level":3,"score":0.7144303917884827},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.5989670753479004},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.4663469195365906},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.4186927378177643},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.22720617055892944},{"id":"https://openalex.org/C42935608","wikidata":"https://www.wikidata.org/wiki/Q190411","display_name":"Field-programmable gate array","level":2,"score":0.20684334635734558},{"id":"https://openalex.org/C50522688","wikidata":"https://www.wikidata.org/wiki/Q189833","display_name":"Economic growth","level":1,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3533767.3534414","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3533767.3534414","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 31st ACM SIGSOFT International Symposium on Software Testing and Analysis","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Decent work and economic growth","id":"https://metadata.un.org/sdg/8","score":0.4300000071525574}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":35,"referenced_works":["https://openalex.org/W1965335252","https://openalex.org/W1966973702","https://openalex.org/W2043118292","https://openalex.org/W2091939272","https://openalex.org/W2180277119","https://openalex.org/W2350778671","https://openalex.org/W2386192529","https://openalex.org/W2532962075","https://openalex.org/W2576376563","https://openalex.org/W2701225458","https://openalex.org/W2741068848","https://openalex.org/W2749008552","https://openalex.org/W2757104921","https://openalex.org/W2766540688","https://openalex.org/W2777430404","https://openalex.org/W2782780792","https://openalex.org/W2791018263","https://openalex.org/W2794670092","https://openalex.org/W2882992559","https://openalex.org/W2891235722","https://openalex.org/W2963298680","https://openalex.org/W2964097210","https://openalex.org/W2964241064","https://openalex.org/W2967191362","https://openalex.org/W2986938475","https://openalex.org/W3006130050","https://openalex.org/W3015365135","https://openalex.org/W3015383024","https://openalex.org/W3019415692","https://openalex.org/W3019428952","https://openalex.org/W3090745156","https://openalex.org/W3104664063","https://openalex.org/W3105926539","https://openalex.org/W3111743984","https://openalex.org/W6969230144"],"related_works":["https://openalex.org/W2170071008","https://openalex.org/W2103996454","https://openalex.org/W3029775214","https://openalex.org/W2390650884","https://openalex.org/W2093057572","https://openalex.org/W2129151116","https://openalex.org/W2110651346","https://openalex.org/W2001552871","https://openalex.org/W1974143443","https://openalex.org/W2353557016"],"abstract_inverted_index":{"Greybox":[0],"fuzzing":[1,14,51,91,228],"has":[2],"become":[3],"one":[4],"of":[5,59,96,190,200,217],"the":[6,43,57,90,94,100,115,130,143,151,155,167,173,198,201,225,254],"most":[7,49],"effective":[8],"vulnerability":[9],"discovery":[10],"techniques.":[11],"However,":[12,62],"greybox":[13],"techniques":[15,52],"cannot":[16],"be":[17],"directly":[18],"applied":[19],"to":[20,80,87,98,109,133,186,196],"applications":[21,32,44,112,136,213],"in":[22,45,114,227],"IoT":[23,47,218],"devices.":[24,219],"The":[25,220],"main":[26],"reason":[27],"is":[28],"that":[29],"executing":[30],"these":[31,111],"highly":[33],"relies":[34],"on":[35,210],"specific":[36],"system":[37,188],"environments":[38],"and":[39,84,148,192],"hardware.":[40],"To":[41,118],"execute":[42,110,134],"Linux-based":[46],"devices,":[48],"existing":[50,106],"use":[53],"full-system":[54,67,82,146,238],"emulation":[55,68,83,86,147,185],"for":[56,150,176],"purpose":[58],"maximizing":[60],"compatibility.":[61],"compared":[63],"with":[64,237],"user-mode":[65,85,103,116,138,164,177,184],"emulation,":[66,104,239],"suffersfrom":[69],"great":[70],"overhead.":[71],"Therefore,":[72],"some":[73],"previous":[74],"works,":[75],"such":[76],"as":[77],"Firm-AFL,":[78],"propose":[79,123],"combine":[81],"speed":[88],"up":[89,129],"process.":[92],"Despite":[93],"attempts":[95],"trying":[97],"shift":[99],"application":[101,144,203],"towards":[102],"no":[105],"technique":[107],"supports":[108],"fully":[113],"emulation.":[117,139,165,178],"address":[119],"this":[120],"issue,":[121],"we":[122],"EQUAFL,":[124],"which":[125],"can":[126,171],"automatically":[127],"set":[128],"execution":[131],"environment":[132,175],"embedded":[135,202],"under":[137,145],"EQUAFL":[140,170,180,209,223],"first":[141],"executes":[142],"observe":[149],"key":[152],"points":[153],"where":[154],"program":[156],"may":[157],"get":[158],"stuck":[159],"or":[160],"even":[161],"crash":[162],"during":[163,204],"With":[166],"observed":[168],"information,":[169],"migrate":[172],"needed":[174],"Then,":[179],"uses":[181],"an":[182],"enhanced":[183],"replay":[187],"calls":[189],"network,":[191],"resource":[193],"management":[194],"behaviors":[195],"fulfill":[197],"needs":[199],"its":[205],"execution.":[206],"We":[207,244],"evaluate":[208],"70":[211],"network":[212],"from":[214,253],"different":[215],"series":[216],"result":[221],"shows":[222],"outperforms":[224],"state-of-the-arts":[226],"efficiency":[229],"(on":[230],"average,":[231],"26":[232],"times":[233,241],"faster":[234],"than":[235,242],"AFL-QEMU":[236],"14":[240],"Firm-AFL).":[243],"have":[245],"also":[246],"discovered":[247],"ten":[248],"vulnerabilities":[249],"including":[250],"six":[251],"CVEs":[252],"tested":[255],"firmware":[256],"images.":[257]},"counts_by_year":[{"year":2025,"cited_by_count":12},{"year":2024,"cited_by_count":10},{"year":2023,"cited_by_count":11},{"year":2022,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}